The Amazon SDK for .NET V3 has entered maintenance mode.

We recommend that you migrate to [Amazon SDK for .NET V4](https://docs.amazonaws.cn/sdk-for-net/v4/developer-guide/welcome.html). For additional details and information on how to migrate, please refer to our [maintenance mode announcement](https://aws.amazon.com/blogs/developer/aws-sdk-for-net-v3-maintenance-mode-announcement/).

# Accessing Amazon Identity and Access Management (IAM) with the Amazon SDK for .NET
<a name="iam-apis-intro"></a>

The Amazon SDK for .NET supports [Amazon Identity and Access Management](https://docs.amazonaws.cn/IAM/latest/UserGuide/), which is a web service that enables Amazon customers to manage users and user permissions in Amazon.

An Amazon Identity and Access Management (IAM) *user* is an entity that you create in Amazon. The entity represents a person or application that interacts with Amazon. For more information about IAM users, see [IAM Users](https://docs.amazonaws.cn/IAM/latest/UserGuide/id_users.html) and [IAM and STS Limits](https://docs.amazonaws.cn/IAM/latest/UserGuide/reference_iam-limits.html) in the IAM User Guide.

You grant permissions to a user by creating an IAM *policy*. The policy contains a *policy document* that lists the actions that a user can perform and the resources those actions can affect. For more information about IAM policies, see [Policies and Permissions](https://docs.amazonaws.cn/IAM/latest/UserGuide/access_policies.html) in the *IAM User Guide*.

**Warning**  
To avoid security risks, don't use IAM users for authentication when developing purpose-built software or working with real data. Instead, use federation with an identity provider such as [Amazon IAM Identity Center](https://docs.amazonaws.cn/singlesignon/latest/userguide/what-is.html).

## APIs
<a name="w2aac19c15c19c13"></a>

The Amazon SDK for .NET provides APIs for IAM clients. The APIs enable you to work with IAM features such as users, roles, and access keys.

This section contains a small number of examples that show you the patterns you can follow when working with these APIs. To view the full set of APIs, see the [Amazon SDK for .NET API Reference](https://docs.amazonaws.cn/sdkfornet/v3/apidocs/) (and scroll to "Amazon.IdentityManagement").

This section also contains [an example](net-dg-hosm.md) that shows you how to attach an IAM role to Amazon EC2 instances to make managing credentials easier.

The IAM APIs are provided by the [AWSSDK.IdentityManagement](https://www.nuget.org/packages/AWSSDK.IdentityManagement) NuGet package.

## Prerequisites
<a name="w2aac19c15c19c15"></a>

Before you begin, be sure you have [set up your environment and project](net-dg-config.md). Also review the information in [SDK features](net-dg-sdk-features.md).

## Topics
<a name="w2aac19c15c19c17"></a>

**Topics**
+ [APIs](#w2aac19c15c19c13)
+ [Prerequisites](#w2aac19c15c19c15)
+ [Topics](#w2aac19c15c19c17)
+ [Creating managed policies from JSON](iam-policies-create-json.md)
+ [Displaying policy documents](iam-policies-display.md)
+ [Granting access with a role](net-dg-hosm.md)